What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-11-12 09:15:50 | SmarterASP.net customers knocked offline due to Ransomware attack (lien direct) | SmartASP.net reported it was hit with a ransomware attack over the weekend that encrypted and knocked offline many of the hosting services customer accounts. For many SmarterASP.net's customers their first indication something was wrong was when they were presented with a note from the company stating an attack was taking place and efforts were being […] | Ransomware | ||
|
2019-11-11 11:35:18 | (Déjà vu) Deepfake Videos: When good tech goes bad (lien direct) | By Ben Lorica, Chief Data Scientist at O'Reilly More than a decade ago leading UK investigative journalist Nick Davies published Flat Earth News, an exposé of how the mass media had abdicated its responsibility to the truth. Newsroom pressure to publish more stories, faster than their competitors had, Davies argued, led to journalists becoming mere […] | Guideline | ||
|
2019-11-11 11:06:12 | Phishing attacks are increasingly sophisticated: here\'s how to stay safe (lien direct) | The days of crude phishing attacks, which anyone with a little common sense could avoid falling victim to, are a thing of the past. Today's cybercriminals are savvier than their predecessors, capable of producing spoof emails and websites convincing enough to fool even the most educated eye. While it's easy to feel helpless in the wake […] | |||
|
2019-11-11 09:24:37 | IoT Vulnerabilities exposed by Ring Flaw (lien direct) | A vulnerability in Amazon’s Ring doorbell cameras would have allowed a local attacker to gain access to a target’s entire wireless network A vulnerability in Amazon's Ring Video Doorbell Pro IoT device could have allowed a nearby attacker to imitate a disconnected device and then sniff the credentials of the wireless networks when the owner […] | Vulnerability | ||
|
2019-11-11 09:24:19 | (Déjà vu) Heart Attack Mortality increased due to Hospital Cyberattacks (lien direct) | Breach remediation processes adversely impact timeliness in patient care and outcomes, a new study finds. Ransomware attacks and data breaches targeting hospitals may cause a higher mortality rate among heart patients in the months and years after an incident, Vanderbilt University researchers report, as breach remediation time interferes with patient care and outcomes. Source: Dark […] | Ransomware | ||
|
2019-11-11 09:24:04 | (Déjà vu) Ransomware Attack hits QuikSilver and Billabong (lien direct) | Action sports giant Boardriders was hit by a ransomware attack that affected some of its subsidiaries, including QuikSilver and Billabong, and forced the company to shut down computing systems all over the world. Source: Bleeping Computer | Ransomware | ||
|
2019-11-11 09:23:44 | (Déjà vu) Trump and Clinton Themed Malware Infections (lien direct) | Just as people express their political views through art, malware developers express their political ideologies, hopes, and frustrations through the computer infections they create. While investigating a recent malspam campaign, the Cisco Talos Group noticed that the payload was named Trump.exe. Noticing the politically themed name, Talos began researching other malicious programs that contained political […] | Malware | ||
|
2019-11-11 09:23:25 | E-mail scam from The British Gas catching people out (lien direct) | People are being warned about a realistic new British Gas phishing scam. Customers are receiving an e-mail which claims there has been an issue with their bill and prompts them to check their details. However, if they click the seemingly genuine link on the authentic looking e-mail, customers could see their accounts compromised. Source: Daily […] | |||
|
2019-11-08 10:39:07 | The implications of Insider Threat (lien direct) | Dealing with Insider Threat can be a difficult, but essential task. The consequence of identity access management is incredibly important when considering the 2020 Insider Threat Report, produced by Gurucul. | Threat | ||
|
2019-11-08 09:58:48 | Phishers\' Favorite Brand Upset by PayPal (lien direct) | Several factors edged the world’s most popular payment service into the top spot. PayPal was the most frequently spoofed brand in the third quarter of 2019, unseating Microsoft, phishers’ usual favorite, which held the top spot for more than a year, Vade Secure reports. Source: Dark Reading | ★★ | ||
|
2019-11-08 09:58:18 | The Hartmann Group proves security starts with One Identity (lien direct) | The Hartmann Group, a multi-billion Euro company and one of the leading providers of medical devices and hygiene products in Europe is using One Identity, a proven leader in identity-centered security, to manage over 8,000 digital identities across the globe for multiple applications, including SAP. | Guideline | ★★★★★ | |
|
2019-11-08 09:58:00 | Twitter & Trend Micro become Victim to Malicious Insiders (lien direct) | The companies are the latest on a long and growing list of organizations that have fallen victim to users with legitimate access to enterprise systems and data. Two separate incidents reported this week have once again highlighted how insiders with legitimate access to systems and data can be far more dangerous to enterprise security than […] | ★★★★★ | ||
|
2019-11-08 09:57:12 | (Déjà vu) Disk Cleanup Folder Removed from Microsoft (lien direct) | Microsoft has decided to roll back its decision to add the Downloads folder to the Windows 10 Disk Cleanup program after receiving negative feedback from users. The Windows 10 Disk Cleanup program allows users to quickly free up hard drive space by removing unneeded files found in a variety of system locations. These locations include temporary […] | ★★★ | ||
|
2019-11-08 09:56:16 | (Déjà vu) Active Emotet and BlueKeep Threats warning by Australian Govt (lien direct) | The Australian Signals Directorate's Australian Cyber Security Centre (ACSC) together with state and territory partners warns businesses and people of Emotet and BlueKeep threats being active in the wild. The ACSC urges vigilance as attackers exploiting the Windows BlueKeep vulnerability have started attacking unpatched systems to infect them with coin miners. Source: Bleeping Computer | Vulnerability | ★★★ | |
|
2019-11-08 09:55:02 | 30,000 affected by Maine\'s InterMed suffers data breach (lien direct) | The Portland, Maine healthcare provider InterMed is informing about 30,000 patients that some of their PHI has been involved in a data breach. The facility learned on September 6, 2019 that an employee's email account had been hacked a few days prior, which led to several other accounts also being breached between September 7-10. An […] | Data Breach | ||
|
2019-11-07 09:47:32 | Industrial sector targeted by Adversary harboring DopplePaymer ransomware (lien direct) | A cyber adversary in possession of both ransomware and point-of-sale malware was recently found to have obtained “a deep level of access” to the infrastructures of at least two targets, including a U.S.-based aluminum and stainless steel gratings company, researchers have reported. Source: SC Magazine | Ransomware Malware | ★★★★ | |
|
2019-11-07 09:47:14 | Bilk Businesses attacked by accounting Scams (lien direct) | Yes, ransomware is plaguing businesses and government organizations, but impersonators inserting themselves into financial workflows – most often via e-mail – continue to enable big paydays. Source: Dark Reading | Ransomware | ★★★ | |
|
2019-11-07 09:46:54 | (Déjà vu) Thousands of Drivers Spill Data from California DMV Leak (lien direct) | Federal agencies reportedly had improper access to Social Security data belonging to 3,200 license holders. Source: Dark Reading | ★★★★★ | ||
|
2019-11-07 09:46:31 | Group member info advised to be deleted by Facebook app developers (lien direct) | For the last 18 months some of Facebook's developers have had access to private user information contained within some of the social media site's groups. Source: SC Magazine | |||
|
2019-11-07 09:46:14 | Sneaky purchases being made by Android keyboard app (lien direct) | The Android version of the popular virtual keyboard app ai.type has attempted to make over 14 million unauthorized transactions that could have cost the users US$18 million in unwanted charges, reads a report from mobile technology firm Upstream. Source: We Live Security | |||
|
2019-11-06 15:39:35 | Another Facebook Privacy Breach (lien direct) | Facebook has quietly revealed another privacy breach involving approximately 100 developers. On Tuesday, Konstantinos Papamiltiadis, Facebook’s Director of Platform Partnerships said in a blog post that the names and profile pictures of users connected to Groups and the system’s API were accessible. | |||
|
2019-11-06 15:29:56 | (Déjà vu) 8 Years on the Run – Researchers Discover DarkUniverse APT (lien direct) | Security researchers today published technical details about malware used by a new threat actor that matches a signature in a scanner likely built by the U.S. National Security Agency and leaked more than two years ago. The new threat received the name DarkUniverse and was active for at least eight years, between 2009 and 2017. […] | Malware Threat | ||
|
2019-11-06 15:24:59 | Cybersecurity to be part of the UK\'s pact with EU after Brexit (lien direct) | Even after Brexit, the UK and Europe need to work together very closely with cybersecurity a key area, according to Michel Barnier, the chief negotiator on Brexit at the European Commission. Any new agreement between the EU and UK will be based both on trade and on ensuring mutual security, Barnier said, noting that the […] | |||
|
2019-11-06 15:23:05 | Data Breach Reports Increase in Canada after Privacy Law (lien direct) | According to the Office of the Privacy Commissioner of Canada's report, around 680 security breach reports, which is six times the volume received during the same period one year earlier, were received since November 01, 2018. It's said that the number of Canadians affected by a data breach is more than 28 million, in which […] | Data Breach | ||
|
2019-11-05 13:20:05 | Kaspersky uncovers zero-day in popular web browser exploited in the wild by threat actor (lien direct) | Kaspersky's automated technologies have detected a new exploited vulnerability in the Google Chrome web browser. Kaspersky has allocated the vulnerability as CVE-2019-13720 and reported it to Google. A patch has been released. Upon review of the PoC provided, Google confirmed that it is a zero-day vulnerability. Zero-day vulnerabilities are previously unknown software bugs that can be exploited by attackers […] | Vulnerability Threat | ||
|
2019-11-05 13:15:34 | What is prescriptive security from a process perspective? (lien direct) | The processes around prescriptive security are distinct from those around traditional cyber security in a number of ways. Here, we'll examine the differences using the example of a device belonging to the executive assistant of a CEO having been subject to a phishing attack, resulting in a virus. As every cyber security expert knows, phishing […] | ★★ | ||
|
2019-11-05 13:10:08 | 28 million Canadians impacted by data breaches in the last year (lien direct) | In the last 12 months, the personal information of approximately 28 million Canadians was affected by corporate hacks or mismanagement, according to the Office of the Privacy Commissioner of Canada (OPC). The assessment was issued last week after the first full year's worth of data supplied by private sector firms that had to report breaches […] | ★★★ | ||
|
2019-11-05 13:09:01 | Over 600,000 customer details stolen in Vedantu data breach (lien direct) | India-based educational technology firm Vedantu has suffered a data breach, exposing “extensive personal information” on 687,000 users. Affected personal details include email and IP addresses, names, phone numbers, website activity and genders. Passwords were also exposed but were stored as bcrypt hashes, which means they were not visible in plaintext. Vedantu, headquartered in Bengaluru, provides […] | Data Breach | ||
|
2019-11-05 13:04:14 | Spanish companies hit by ransomware (lien direct) | Two major Spanish companies have been hit by ransomware today. Both infections occurred on the same day, sparking memories of the WannaCry outbreak. Spain was one of the first countries alongside the UK, where the WannaCry ransomware infections were spotted for the first time back on May 12, 2017. Affected at the time were Spanish newspaper […] | Ransomware | Wannacry | ★★★ |
|
2019-11-05 13:03:47 | UK government asks businesses why they aren\'t securing themselves (lien direct) | The British government wants your bright ideas for improving the nation’s cybersecurity because it wants to “understand the apparent lack of strong commercial rationale for investment” in locking down your shizz. As part of its fond hope of making the UK a bit more secure than the rest of the world, the Department for Digital, […] | ★★★★★ | ||
|
2019-11-05 13:03:10 | Edward Snowden says GDPR is missing the point (lien direct) | Europe’s data protection legislation is still missing the point and will remain a ‘paper tiger’ until internet giants are hit with big fines, according to NSA-contractor turned whistleblower and privacy campaigner Edward Snowden. The General Data Protection Regulation (GDPR) came into force across the European Union on 25 May 2018 and is designed to give EU […] | |||
|
2019-11-05 13:02:33 | (Déjà vu) Trik botnet now spreads Nemty ransomware (lien direct) | The operators of Nemty ransomware have found a new distributor for their file-encrypting malware, which now spreads via Trik, a botnet that pushes all sorts of threats. The malware is spread to systems that have the Server Message Block (SMB) network communication protocol exposed on the web and protected by weak credentials. Source: Bleeping Computer | Ransomware Malware | ||
|
2019-11-01 12:02:08 | Q&A with Eoin Keary (lien direct) | This week's question: What does automation mean for IT security teams? What automation primarily means is that teams now have the chance to scale their tasks to meet the needs of the business. Nowadays, given that vulnerabilities are discovered on a daily basis, organisations need tools that can keep track of these weaknesses as these are made public and patches become available. […] | ★★ | ||
|
2019-11-01 09:45:31 | (Déjà vu) Hack_Right Program Pledged by 20 Companies (lien direct) | The Hack_Right program aiming to help young hackers avoid cybercrime and use their skills for good has received a pledge of support from about 20 companies. The program is intended for young individuals that received a conviction for cybercriminal activity for the first time. It is an alternative to the traditional punishment process or an […] | |||
|
2019-11-01 09:45:08 | (Déjà vu) Associates\' Social Security Numbers Exposured by Marriott (lien direct) | Marriott International notified some of its associates of an incident that exposed their social security numbers (SSNs) to an unknown party. An unknown individual may have accessed the information from the network of an unnamed vendor that was acting as the hotel’s agent for receiving service of official documents. Source: Bleeping computer | |||
|
2019-11-01 09:44:45 | (Déjà vu) Malware Scare with Halloween Emails (lien direct) | The Emotet Trojan is celebrating Halloween by pushing out new spam templates that want to invite you to a neighborhood party. While these emails promise you a treat, in reality Emotet is tricking you into installing an infection. For those not familiar with Emotet, it is a malware infection that is spread through spam emails containing […] | Spam Malware | ||
|
2019-11-01 09:44:25 | New Gafgyt Variant Exposed to 32,000+ WiFi Routers (lien direct) | Researchers detect an updated Gafgyt variant that targets flaws in small office and home wireless routers from Zyxel, Huawei, and Realtek. A newly discovered variant of the Gafgyt Internet of Things (IoT) botnet is attempting to infect connected devices, specifically small office and home wireless routers from brands that include Zyxel, Huawei, and Realtek. Source: […] | |||
|
2019-11-01 09:44:09 | (Déjà vu) Telco Networks SMS Messages stolen by Chinese Cyber Espionage Group (lien direct) | APT41’s new campaign is latest to highlight trend by Chinese threat groups to attack upstream service providers as a way to reach its intended targets, FireEye says. APT41, a Chinese hacking group known for its prolific state-sponsored espionage campaigns, has begun targeting telecommunications companies with new malware designed to monitor and save SMS traffic from […] | Malware Threat Guideline | APT 41 | |
|
2019-10-31 12:02:43 | Four principles for security metrics (lien direct) | As a data scientist I cannot solve business problems if appropriate data is not available. However, this is the situation faced by security leaders on a daily basis – they have to make strategic decisions, which will impact their cyber security posture, without having access to the insights they need. How can they overcome the […] | Guideline | ★★★ | |
|
2019-10-31 11:58:51 | Here\'s Why the 20th Anniversary of Windows XP\'s Release Is Scarier Than It Sounds (lien direct) | It may be hard to remember today, but when Windows XP was released on Oct. 25, 2001, it was a revelation. Aimed at both consumers and businesses, it married a user-friendly interface with reliability, replacing clunky and crash-prone Windows 2000. When upgrades to the system became available in the ensuing years, many businesses and individuals […] | ★★ | ||
|
2019-10-31 11:50:32 | Why is working culture so important for the benefit of the business? (lien direct) | Getting the working culture right for any business can be difficult but KnowBe4 seems to have found a winning formula to achieve this. We caught up with Erika Lance, SVP of People Operations at KnowBe4, who is seen as the brains behind much of this success, to hear how she was able to get such great results. | |||
|
2019-10-31 10:07:09 | (Déjà vu) New Mexico Public Schools Attacked by Ransomware (lien direct) | The attack early in the morning of October 29 has taken all of the school district’s systems offline. A ransomware attack against Las Cruces, New Mexico’s public school system has shut down computers and networks across the district. School district IT teams reportedly reacted quickly, shutting down all computers immediately after detecting the attack at […] | Ransomware | ★★★ | |
|
2019-10-31 10:06:43 | (Déjà vu) Bed Bath & Beyond Customer Login Credentials Breach (lien direct) | In a report for the Securities and Exchange Commission (SEC) on Tuesday, Bed Bath & Beyond retailer disclosed that an unauthorized party obtained login information for some of its customers. Details about the breach are scarce but the company says that it affected a small number of online accounts. Source: Bleeping Computer | |||
|
2019-10-31 10:06:07 | (Déjà vu) Precision Engineering Company Targeted by Phishing Campaign (lien direct) | Attackers have targeted precision companies in Italy with phishing that is difficult to spot. The final payload is a fileless trojan that harvests credentials. The campaign used a legitimate-looking Microsoft Excel spreadsheet embedded with exploit code that moves silently to infect the computer. Source: Bleeping Computer | |||
|
2019-10-31 10:05:09 | List of victims added to Xhelper ad dropper (lien direct) | There has been a surge in activity surrounding the Xhelper Android ad dropper, with more than 45,000 devices being infected since the malware made its first appearance six months ago. In the past month an average of 131 devices were infected each day, with about 2,400 devices persistently infected throughout the month. The malware mostly […] | Malware | ||
|
2019-10-31 10:04:00 | Indian journalists amongst those targeted by spyware on Whatsapp (lien direct) | Messaging app WhatsApp has said Indian journalists and activists are among some 1,400 people worldwide who were targeted with Israeli-made spyware. WhatsApp filed a lawsuit against NSO Group on Wednesday, alleging it was behind cyber-attacks that infected devices in April and May. The Israeli company, which makes software for surveillance, has strongly disputed the allegations. India has […] | |||
|
2019-10-30 16:14:31 | We Don\'t Need No Education – We Need Apprentices! (lien direct) | by Budgie Dhanda, CEO of Qufaro & Adrian Davis, Visiting Professor at University of Sunderland The lack of trained professionals in the cybersecurity industry is a problem that official statistics predict will only get worse with time. In fact, the 2017 ISC2 Global Information Security Workforce Study predicted a global 1.8M shortfall by 2022. The threats […] | |||
|
2019-10-30 09:53:01 | (Déjà vu) New Email Campaign Attacks Italy in Maze Ransomware (lien direct) | The Maze Ransomware is conducting a new spam campaign that targets Italian users by pretending to be the country’s Tax and Revenue Agency. The Maze Ransomware is not a new infection, but within the past month it has been picking up steam with new campaigns, partnering with exploit kits, and inserting playful comments targeting researchers in their […] | Ransomware Spam | ||
|
2019-10-30 09:52:29 | (Déjà vu) School \'District-Wide Shutdown\' Ransomware Attack (lien direct) | A ransomware attack hitting Las Cruces Public Schools forced the district to shut down the entire computer system to contain the infection. Exchanging information with schools is impaired as email and other forms of computer-based communication is no longer possible at this moment. Source: Bleeping Computer | Ransomware | ||
|
2019-10-30 09:51:54 | 10 percent of small businesses to impacted by Data breach (lien direct) | Data breaches hitting massive entities like Equifax, Facebook and Target grab headlines, but the impact on small businesses is just as severe with attacks causing bankruptcy or even forcing a firm to shutter its doors. A report issued by the National Cyber Security Alliance, based on a Zogby Analytics survey of 1,008 small businesses with up to […] | Data Breach | Equifax |
To see everything:
Our RSS (filtrered)
